Difference between revisions of "SMART"

From Forensics Wiki
Jump to: navigation, search
(SMART for Linux)
 
(License Notes)
 
(4 intermediate revisions by 2 users not shown)
Line 1: Line 1:
SMART is a software utility that has been designed and optimized to support data forensic practitioners and Information Security personnel in pursuit of their respective duties and goals. The SMART software and methodology have been developed with the intention of integrating technical, legal and end-user requirements into a complete package that enables the user to perform their job most effectively and efficiently.
+
{{Infobox_Software |
 +
  name = SMART |
 +
  maintainer = [[ASR Data]] |
 +
  os = {{Linux}} |
 +
  genre = {{Analysis}} |
 +
  license = {{Commercial}} |
 +
  website = [http://www.asrdata.com/SMART/ asrdata.com/SMART/] |
 +
}}
  
SMART is more than a stand-alone data forensic program. The features of SMART allow it to be used in many scenarios, including:
+
'''SMART''' is a commercial forensics software package distributed by [[ASR Data]].
  
    *  "Knock-and-talk" inquiries and investigations
+
=Features=
    *  on-site or remote preview of a target system
+
    *  post mortem analysis of a dead system
+
    *  testing and verification of other forensic programs
+
    *  conversion of proprietary "evidence file" formats
+
    *  baselining of a system
+
  
 +
==File Systems Understood==
  
Who Uses SMART?
+
==File Search Facilities==
SMART is currently utilized by:
+
  
    * Federal, State and local Law Enforcement
+
* Lists allocated and unallocated files.
    * U.S. Military and Intelligence Organizations
+
* Sorts files by type.
    * Accounting Firms
+
* Searches for keywords and regex.
    * Data forensic examiners
+
* [[Registry viewer]].
    *  Data recovery specialists
+
 
    * Disaster recovery professionals
+
==Historical Reconstruction==
    * Information security professionals
+
 
    * Health care privacy professionals
+
Can it build timelines and search by creation date?
    * Internal auditors
+
 
    * System Administrators
+
==Searching Abilities==
 +
 
 +
* Can use basic keyword searching.
 +
 
 +
==Hash Databases==
 +
 
 +
* [[SHA]]
 +
* [[MD5]]
 +
* [[CRC]]
 +
 
 +
==Evidence Collection Features==
 +
 
 +
* "''Just about everything you do is logged in SMART. You can selectively export these log events into a simple HTML report.''"
 +
 
 +
=History=
 +
 
 +
==License Notes==
 +
 
 +
SMART is a commercial product with seperate pricing for law enforcement and commercial users.
 +
 
 +
= External Links =
 +
 
 +
==External Reviews==

Latest revision as of 14:01, 15 September 2006

SMART
Maintainer: ASR Data
OS: Linux
Genre: Analysis
License: Commercial
Website: asrdata.com/SMART/

SMART is a commercial forensics software package distributed by ASR Data.

Contents

Features

File Systems Understood

File Search Facilities

  • Lists allocated and unallocated files.
  • Sorts files by type.
  • Searches for keywords and regex.
  • Registry viewer.

Historical Reconstruction

Can it build timelines and search by creation date?

Searching Abilities

  • Can use basic keyword searching.

Hash Databases

Evidence Collection Features

  • "Just about everything you do is logged in SMART. You can selectively export these log events into a simple HTML report."

History

License Notes

SMART is a commercial product with seperate pricing for law enforcement and commercial users.

External Links

External Reviews